Status: article about 1.2 G pcap file, packet level of tens of millions of
Requirements: now I need the size of each flow statistics, as well as the specific information, rather than each package,
Such as 127.0.0.1 - "127.0.0.2 size IP protocol TCP protocol field
You have any good way to recommend, or have a ready-made code? Now I just see in python DPKT is to deal with this method, do not know to have a more convenient
Thank you

-- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- -- --
I don't know why use DPKT read (this problem from another problem that copied because I'm the same with him, is probably data sets are made of caida)
> F=file (" equinix - Chicago. DirA. 20140320-125911. The UTC. -anon. Pcap ")
> Pcap=DPKT. Pcap. Reader (f)
> For ts, buf in pcap:
> The eth=DPKT. Ethernet. Ethernet (buf)
> Print the eth
Output is the result of the garbled:
E (uy @ 94? Q "] X?? P? 6 d?? q? 4 pl??
E? G? 7? 2?? : JV> [{L a? _?
E<? @ : Q?? Ac?? $?? PGT? #??????
/9?
EGb? @ | '^ -? & C? LG ^ CY??? K? ~ D? Ub??????? D?? ; ? h?
D? J??? U?